On 2/11/2011 2:38 PM, Alan Batie wrote:
I've discovered something odd: permit_mynetworks seems to be allowing invalid addresses in rather than just allowing relaying. The symptom is that if I connect from a local client, any rcpt to is accepted; if I connect from a non-local client, it's properly rejected.
Yes, that's how reject_unlisted_recipient works.
moving reject_unlisted_recipient before permit_mynetworks seems like the right answer,
Yes.
except that I'm afraid that would block relaying outbound mail.
No, the reject_unlisted_{sender, recipient} checks only apply to domains that postfix is responsible for. External domains are not checked.
-- Noel Jones
